CVE-2009-0758: CVE-2009-0758

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-0758

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The originates_from_local_legacy_unicast_socket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the network byte order of a port number when processing incoming multicast packets, which allows remote attackers to cause a denial of service (network bandwidth and CPU consumption) via a crafted legacy unicast mDNS query packet that triggers a multicast packet storm.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Avahi avahi-core/server.c多播DNS拒绝服务漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Avahi是用于Linux的本地服务发现工具。 Avahi的avahi-core/server.c文件中的originates_from_local_legacy_unicast_socket()例程在检查入站的多播报文时没有考虑.sin_port的网络字节序列，avahi-daemon反射器在反射旧式单播mDNS通讯时会导致出现大量报文。反射器将初始的多播查询转发到其他接口，然后在同一接口接收回来(IP_MULTICAST_LOOP)，但没有将刚刚转发的查询识别为旧式单播报文，因此就处理为独立的查询，并

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-0758

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-0758

Please Login to view more intelligence information

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=517683x_refsource_MISC
http://secunia.com/advisories/38420third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/33946vdb-entryx_refsource_BID
http://www.debian.org/security/2010/dsa-2086vendor-advisoryx_refsource_DEBIAN
http://www.mandriva.com/security/advisories?name=MDVSA-2009:076vendor-advisoryx_refsource_MANDRIVA
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00000.htmlvendor-advisoryx_refsource_SUSE
http://www.openwall.com/lists/oss-security/2009/03/02/1mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2009-0758

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2009-0758

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2009-0758

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-0758

III. Intelligence Information for CVE-2009-0758

New Vulnerabilities

V. Comments for CVE-2009-0758

Leave a comment